Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2014-1904

Cross-site scripting (XSS) vulnerability in web/servlet/tags/form/FormTag.java in Spring MVC in Spring Framework 3.0.0 before 3.2.8 and 4.0.0 before 4.0.2 allows remote attackers to inject arbitrary web script or HTML via the requested URI in a default action.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.022
EPSS Ranking 83.5%
CVSS Severity
CVSS v2 Score 4.3
References
Products affected by CVE-2014-1904


Products
Pricing
Contact Us

Shodan ® - All rights reserved